---
apiVersion: certificates.k8s.io/v1
kind: CertificateSigningRequest
metadata:
  creationTimestamp: "2026-04-17T20:44:08Z"
  generateName: csr-
  managedFields:
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:status:
        f:certificate: {}
    manager: kube-controller-manager
    operation: Update
    subresource: status
    time: "2026-04-17T20:44:08Z"
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:metadata:
        f:generateName: {}
    manager: kubelet
    operation: Update
    time: "2026-04-17T20:44:08Z"
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:status:
        f:conditions:
          .: {}
          k:{"type":"Approved"}:
            .: {}
            f:lastTransitionTime: {}
            f:lastUpdateTime: {}
            f:message: {}
            f:reason: {}
            f:status: {}
            f:type: {}
    manager: machine-approver
    operation: Update
    subresource: approval
    time: "2026-04-17T20:44:08Z"
  name: csr-422mn
  resourceVersion: "5483"
  uid: ffd4dce6-beec-4f98-8538-dec14f5c5867
spec:
  extra:
    authentication.kubernetes.io/credential-id:
    - X509SHA256=8f3c5e9c3be2bad69ab6715f6cf78efc5b1279eac61625f9799bef8be153f4b8
  groups:
  - system:serviceaccounts
  - system:serviceaccounts:openshift-machine-config-operator
  - system:authenticated
  request: LS0tLS1CRUdJTiBDRVJUSUZJQ0FURSBSRVFVRVNULS0tLS0KTUlJQkJqQ0JyQUlCQURCS01SVXdFd1lEVlFRS0V3eHplWE4wWlcwNmJtOWtaWE14TVRBdkJnTlZCQU1US0hONQpjM1JsYlRwdWIyUmxPbWx3TFRFd0xUQXRNVE0zTFRFd01pNWxZekl1YVc1MFpYSnVZV3d3V1RBVEJnY3Foa2pPClBRSUJCZ2dxaGtqT1BRTUJCd05DQUFUVFRpUG1rajZHMlpSVjJ3YWVhNVViaHdwS2FqKzV6SG9oOWI5TzhvcHkKdThOZGFnK3lKQTB6Um5jNzR3VHFZc1lJcGpMcGVFN1FHNjRpc3JOaDd0QXZvQUF3Q2dZSUtvWkl6ajBFQXdJRApTUUF3UmdJaEFJRGFiaDBLUUxOS3FoT2N4TTQzWkJ3ZG9ocGh2NnFyd0tPdTFKL1BWcmFpQWlFQS81UkpMSmNuCnBrVkRPcmJWWExPZVFCSldRaWwvN3V3VGNqQnJ4UUVhaDZVPQotLS0tLUVORCBDRVJUSUZJQ0FURSBSRVFVRVNULS0tLS0K
  signerName: kubernetes.io/kube-apiserver-client-kubelet
  usages:
  - digital signature
  - client auth
  username: system:serviceaccount:openshift-machine-config-operator:node-bootstrapper
status:
  certificate: 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
  conditions:
  - lastTransitionTime: "2026-04-17T20:44:08Z"
    lastUpdateTime: "2026-04-17T20:44:08Z"
    message: This CSR was approved by the Node CSR Approver (cluster-machine-approver)
    reason: NodeCSRApprove
    status: "True"
    type: Approved